Research Academy
My account Customers About Blog Careers Legal Contact Resellers
The Burp Suite User Forum was discontinued on the 1st November 2024.

Burp Suite User Forum

For support requests, go to the Support Center. To discuss with other Burp users, head to our Discord page.

SUPPORT CENTER DISCORD

Zscaler blocking the burp suite interactions

sathish | Last updated: Mar 28, 2024 05:05PM UTC

Hi Team, We are facing the issue that Zscaler is blocking the burp suite interactions like being unable to add extensions and use collaborators. On troubleshooting this issue we observe this seems to be an SSL issue, Burp is not trusting the Zscaler certificate. As a temporary solution we tried checking by disabling the SSL verification on Zscaler and it's working, but it's no longer secure communication, we are looking for permanent solution on this. Could you tell us how to solve this issue? Thanks.

Dominyque, PortSwigger Agent | Last updated: Mar 29, 2024 09:38AM UTC

Hi We have received your email concerning this issue and have responded to it. For transparency's sake, in case any other users are experiencing this issue as well, I will add my reply here: It sounds like you would need to import the Zscaler Root CA cert into the Java cert store that Burp uses. You can find the path for your JDK by going to "Help > Diagnostics" within Burp and looking at the path specified by "java.home". From there, you would need to use keytool to import the certificate into the truststore contained in the "lib/security/" folder.

sathish | Last updated: Mar 29, 2024 12:54PM UTC

Hi, Pls guide us on how to use key-tool to do that? Do we need to install JDK first to get the keytool right?

Dominyque, PortSwigger Agent | Last updated: Apr 01, 2024 08:08AM UTC

Hi Sathish I have responded to your email about this issue. Please reply there so we can better keep track of the conversation, and it also makes it easier to send any files and screenshots if needed. Thank you.

Thiago | Last updated: Sep 17, 2024 08:12PM UTC

I'm having the same problem, but in macOS Sequoia. What are the steps to take to import Zscaler ca certificate to burp suite? Thanks in advance.

Ben, PortSwigger Agent | Last updated: Sep 18, 2024 07:21AM UTC

Hi Thiago, There are some instructions on the page on how to install your ZScaler certificate in the Java trust store that Burp is using: https://medium.com/@_sathishshan/zscaler-blocking-the-burp-suite-interactions-62a9be2f50cb

Thiago | Last updated: Sep 18, 2024 02:50PM UTC

Ben I appreciate the reply, but the instruction in the article provided is for windows. Steps like where is <Path_to_Java_cacerts_file_used_by_Burp_Pro> on macOS? Could you please assist me?

Dominyque, PortSwigger Agent | Last updated: Sep 19, 2024 09:19AM UTC

Hi Thiago, As ZScaler is not our product, we do not have any documentation surrounding this. You would need to change the paths to suit MacOS. Please see here for ZScaler's documentation: https://help.zscaler.com/zia/adding-custom-certificate-application-specific-trust-store

Thiago | Last updated: Sep 19, 2024 05:10PM UTC